05 Dec GDPR – Are You In Compliance?

General Data Protection Regulation (GDPR) officially went into effect on May 25, 2018, and with the new California Consumer Privacy Act (CCPA) going into effect January of 2020, data governance remains extremely important for marketers and advertisers that rely on data for marketing insights.

As we have said before, it’s never a good idea to simply assume that your business is in compliance. In fact, we encourage you to evaluate your compliance on a continual basis because it can actually impact your annual revenue by 4%. Google, for example, takes specific steps to remain compliant with both GDPR and other new data privacy laws as they are created, (such as CCPA). In order to keep your business in line with privacy regulations, we highly suggest that you use the guidelines created by and followed by Google for your own organization. Use the tips below to form a reliable benchmark in data-governance for your business:

Implement updates, such as data retention controls, and the deletion tool. Data retention controls allow you to manage how long your user and event data are held on Google servers. As of May 25, 2018, Google Analytics automatically deletes user and event data that is older than the retention period you select. Note that these settings do not affect reports based on aggregated data.

Make sure you also utilize the user deletion tool and manage the deletion of all data associated with an individual user (e.g., site visitor) from your Google Analytics 360 properties. The automated tool runs based on the common identifiers sent to the Analytics Client ID (i.e., standard Google Analytics first-party cookie), User ID (if enabled), or App Instance ID (if using Google Analytics for Firebase).

Follow the Google Developers Site for additional updates. Make sure you can delete user data in your own systems.

NOTE: In both Google Analytics and Google Analytics 360, Google operates as a processor of personal data.

For all Google Analytics 360 customers and Google Analytics customers based outside the EEA, updated data processing terms are always available for review in your account (Admin ➝ Account Settings).

Google’s EU User Consent Policy reflects the legal requirements of GDPR. It outlines everything you need to disclose and also outlines how to obtain consent from end-users of your sites and apps in the EEA.

Always consult your legal department for confirmation whether your business is in compliance with GDPR while using Google Analytics and Google Analytics 360. Make sure to review any updated data processing terms and define your path for compliance with the EU User Consent Policy.

Need a quick overview of everything we covered in this post? Check out our reference guide below:

Staying ahead of the curb on new data privacy laws, and understanding how they affect your digital marketing efforts is an integral part of any digital marketing strategy.

Learn more about how our award-winning team of data experts leverages Google Marketing Platform and Google Cloud Platform to develop smarter data-driven insights while maintaining best practices in the GDPR and CCPA era.

CONTACT US to learn more about how we help our clients get advertising right.

Tags:

DELVE Experts

delve.experts@delvepartners.com

GDPR – Are You In Compliance?

General Data Protection Regulation (GDPR) officially went into effect on May 25, 2018, and with…

GDPR – Are You In Compliance?

General Data Protection Regulation (GDPR) officially went into effect on May 25, 2018, and with the new California Consumer Privacy Act (CCPA) going into effect January of 2020, data governance remains extremely important for marketers and advertisers that rely on data for marketing insights.

As we have said before, it’s never a good idea to simply assume that your business is in compliance. In fact, we encourage you to evaluate your compliance on a continual basis because it can actually impact your annual revenue by 4%. Google, for example, takes specific steps to remain compliant with both GDPR and other new data privacy laws as they are created, (such as CCPA). In order to keep your business in line with privacy regulations, we highly suggest that you use the guidelines created by and followed by Google for your own organization. Use the tips below to form a reliable benchmark in data-governance for your business:

Implement updates, such as data retention controls, and the deletion tool. Data retention controls allow you to manage how long your user and event data are held on Google servers. As of May 25, 2018, Google Analytics automatically deletes user and event data that is older than the retention period you select. Note that these settings do not affect reports based on aggregated data.

Make sure you also utilize the user deletion tool and manage the deletion of all data associated with an individual user (e.g., site visitor) from your Google Analytics 360 properties. The automated tool runs based on the common identifiers sent to the Analytics Client ID (i.e., standard Google Analytics first-party cookie), User ID (if enabled), or App Instance ID (if using Google Analytics for Firebase).

Follow the Google Developers Site for additional updates. Make sure you can delete user data in your own systems.

NOTE: In both Google Analytics and Google Analytics 360, Google operates as a processor of personal data.

For all Google Analytics 360 customers and Google Analytics customers based outside the EEA, updated data processing terms are always available for review in your account (Admin ➝ Account Settings).

Google’s EU User Consent Policy reflects the legal requirements of GDPR. It outlines everything you need to disclose and also outlines how to obtain consent from end-users of your sites and apps in the EEA.

Always consult your legal department for confirmation whether your business is in compliance with GDPR while using Google Analytics and Google Analytics 360. Make sure to review any updated data processing terms and define your path for compliance with the EU User Consent Policy.

Need a quick overview of everything we covered in this post? Check out our reference guide below:

Staying ahead of the curb on new data privacy laws, and understanding how they affect your digital marketing efforts is an integral part of any digital marketing strategy.

Learn more about how our award-winning team of data experts leverages Google Marketing Platform and Google Cloud Platform to develop smarter data-driven insights while maintaining best practices in the GDPR and CCPA era.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may have an effect on your browsing experience.

Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.

Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.